Re: [ANNOUNCE] experiemental dpkg available
On Mon, Nov 01, 1999 at 04:36:56PM +0100, Ingo Saitz wrote:
> Well, I think this was just an example how it works. I think dpkg would
> read the passphrase from STDIN once and pipe it to a forked gpg process
> for every signature. *I* don't see where this should be insecure.
You can see process command line parameters in /proc/<fd>/cmdline.
OTOH, as long as you use the builtin echo it shouldn't show up there.
Hamish Moffatt VK3SB. CCs of replies on mailing lists are welcome.